Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the go-dependencies group across 1 directory with 6 updates #1373

Merged
merged 2 commits into from
Jul 9, 2024
Merged

Bump the go-dependencies group across 1 directory with 6 updates #1373

merged 2 commits into from
Jul 9, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 8, 2024
edited
Loading

Bumps the go-dependencies group with 5 updates in the / directory:

Package From To
github.com/GoogleContainerTools/kaniko 1.23.0 1.23.1
github.com/containerd/containerd 1.7.17 1.7.19
github.com/google/go-containerregistry 0.19.1 0.20.0
github.com/moby/buildkit 0.13.2 0.14.1
golang.org/x/sys 0.20.0 0.22.0

Updates github.com/GoogleContainerTools/kaniko from 1.23.0 to 1.23.1

Release notes

Sourced from github.com/GoogleContainerTools/kaniko's releases.

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.1-slim

Highlights:

This patch release reverts recently changed behaviour it so that --no-push properly still pushes intermediate cache layers. Additionally documentation around the --no-push and --no-push-cache flag have been added to make the expected behaviour more clear. Additionally numerous dependencies have been updated.

Fixes:

  • fix: Enable pushing cache with --no-push #3181

Docs Updates:

  • docs: document --no-push-cache flag in README.md #3188

Dependency Updates::

  • chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 #3187
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.17 to 1.16.21 #3179
  • chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 #3170
  • chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 #3168
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.2 to 1.54.2 #3169
  • chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 #3171
  • chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #3172
  • chore(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible #3173

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]
  • Leo Palmer Sunmo
Changelog

Sourced from github.com/GoogleContainerTools/kaniko's changelog.

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.1-slim
  • Enable pushing cache with --no-push #3181
  • docs: document --no-push-cache flag in README.md #3188
  • chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 #3187
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.17 to 1.16.21 #3179
  • chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 #3170
  • chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 #3168
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.2 to 1.54.2 #3169
  • chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 #3171
  • chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #3172
  • chore(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible #3173

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]
  • Leo Palmer Sunmo
Commits
  • c93ecd3 chore(release): release v1.23.1 (#3189)
  • f087f4a docs: document --no-push-cache flag in README.md (#3188)
  • 6a340c6 Enable pushing cache with --no-push (#3181)
  • 942fbe6 chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 (#3187)
  • f671fca chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3179)
  • 9c08f1c chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 (#3170)
  • 8237632 chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 (#3168)
  • 5d1c088 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (#3169)
  • b64e9a8 chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 (#3171)
  • 96fa5ff chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 (#3172)
  • Additional commits viewable in compare view

Updates github.com/containerd/containerd from 1.7.17 to 1.7.19

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd API 1.7.19

Welcome to the api/v1.7.19 release of containerd!

The first dedicated release for the containerd 1.7 API. This release is separately tagged from the main 1.7.x releases after the v1.7.18 release but follows the versioning.

Highlights

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Akhil Mohan
  • Phil Estes
  • Sebastiaan van Stijn

Changes

  • Prepare release notes for api v1.7.19 (#10386)
  • : api: update github.com/containerd/ttrpc v1.2.5 to align with containerd 1.7 module (#10364)
    • 2a6aa6ddf [release/1.7] api: update github.com/containerd/ttrpc v1.2.5
  • Add API go module (#10189)

Dependency Changes

  • github.com/containerd/ttrpc v1.2.4 -> v1.2.5
  • github.com/golang/protobuf v1.5.4 -> v1.5.3
  • google.golang.org/genproto/googleapis/rpc d307bd883b97 -> b8732ec3820d

Previous release can be found at v1.7.18

containerd 1.7.19

Welcome to the v1.7.19 release of containerd!

The nineteenth patch release for containerd 1.7 contains various updates and splits the main module from the api module in preparation for the same change in containerd 2.0. Splitting the modules will allow 1.7 and 2.x to both exist

... (truncated)

Commits
  • 2bf793e Merge pull request #10391 from dmcgowan/prepare-v1.7.19
  • 74a3d29 Prepare release notes for v1.7.19
  • 043c712 Merge pull request #10406 from samuelkarp/nri-panic-1.7
  • 5a587e8 Merge pull request #10403 from thaJeztah/1.7_backport_hcsshim_version
  • 7f5d3c5 cri: ensure NRI API never has nil CRI
  • aea977f Merge pull request #10397 from thaJeztah/1.7_backport_deprecate_reference_Spl...
  • 6efc5bb update runhcs binary to v0.11.7
  • 945ae09 Windows: Supply windows shim version via file
  • bb84d90 Merge pull request #10396 from yyatmsft/updatehcsshim-release17
  • dba5357 pkg/reference: deprecate SplitObject
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v26.1.3

26.1.3

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • Fix a regression that prevented the use of DNS servers within a --internal network. moby/moby#47832
  • When the internal DNS server's own address is supplied as an external server address, ignore it to avoid unproductive recursion. moby/moby#47833

Packaging updates

  • Allow runc to kill containers when confined to the runc profile in AppArmor version 4.0.0 and later. moby/moby#47829
Commits
  • 8e96db1 Merge pull request #47832 from vvoland/v26.1-47821
  • c21fe3e Forward DNS requests into --internal networks
  • 86af4ed Merge pull request #47833 from vvoland/v26.1-47744
  • 73511cd Merge pull request #47829 from vvoland/v26.1-47749
  • 9326cda Do not forward DNS requests to self.
  • 76fcf9a apparmor: Allow confined runc to kill containers
  • See full diff in compare view

Updates github.com/google/go-containerregistry from 0.19.1 to 0.20.0

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.0

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.19.2...v0.20.0

v0.19.2

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.19.1...v0.19.2

Commits

Updates github.com/moby/buildkit from 0.13.2 to 0.14.1

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.14.1

Welcome to the 0.14.1 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

  • Talon Bowler
  • Akihiro Suda
  • Tõnis Tiigi
  • Paweł Gronowski

Notable Changes

  • Builtin Dockerfile frontend has been updated to v1.8.1 changelog
  • Fix possible issue on pushing blobs with rewrite-timestamp=true option #5040
  • Fix possible concurrency issue on handling HTTPS to HTTP fallbacks for insecure registries #5044

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.14.0

v0.14.0

Welcome to the 0.14.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

  • Tõnis Tiigi
  • CrazyMax
  • Talon James Bowler
  • Akihiro Suda
  • Jonathan A. Sternberg
  • Justin Chadwell
  • David Karlsson
  • Sebastiaan van Stijn
  • Anthony Nandaa
  • Erik Sipsma
  • Aleksa Sarai
  • Adam Perlin
  • Shaun Thompson

... (truncated)

Commits
  • eb864a8 Merge pull request #5053 from tonistiigi/v0.14.1-cherry-picks
  • dedaef0 shell: handle empty string for var replacements
  • b45ab30 Initialize build args from stage base
  • e34c21a Consolidate instruction casing lint rules
  • 050e3b6 Updates lint output to print detail instead of description
  • 2bf5cbf util/resolver: Make httpFallback concurrent safe
  • 49dd5f4 Adds 'WARNING' prefix to the rule check output and update lint
  • 05bd56b Merge pull request #5040 from AkihiroSuda/cherrypick-5008-0.14
  • 5a7352c Fix content not found with push=true,rewrite-timestamp=true
  • 4d9a4e5 Merge pull request #5017 from crazy-max/fix-history-exporters
  • Additional commits viewable in compare view

Updates golang.org/x/sys from 0.20.0 to 0.22.0

Commits
  • faed7ec unix: add PthreadChdir and PthreadFchdir on darwin
  • c892bb7 unix: fix MmapPtr test failing on OpenBSD
  • a0ef40a unix: fix MremapPtr test failing on NetBSD
  • daa2394 unix: add unsafe mmap, munmap, mremap
  • 7670087 windows: add GetAce Windows API
  • 348425a windows/svc: do not pass theService to windows.RegisterServiceCtrlHandlerEx
  • 673e0f9 unix: skip ethtool driver test for busy interface
  • 6943ab6 unix/linux: update glibc to 2.39
  • 92f3ad6 unix: update to Linux kernel 6.9
  • f34bb9f windows: add net user enum
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go-dependencies group across 1 directory with 6 updates
951c753 
Bumps the go-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/GoogleContainerTools/kaniko](https://github.com/GoogleContainerTools/kaniko) | `1.23.0` | `1.23.1` |
| [github.com/containerd/containerd](https://github.com/containerd/containerd) | `1.7.17` | `1.7.19` |
| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.19.1` | `0.20.0` |
| [github.com/moby/buildkit](https://github.com/moby/buildkit) | `0.13.2` | `0.14.1` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.20.0` | `0.22.0` |



Updates `github.com/GoogleContainerTools/kaniko` from 1.23.0 to 1.23.1
- [Release notes](https://github.com/GoogleContainerTools/kaniko/releases)
- [Changelog](https://github.com/GoogleContainerTools/kaniko/blob/main/CHANGELOG.md)
- [Commits](GoogleContainerTools/kaniko@v1.23.0...v1.23.1)

Updates `github.com/containerd/containerd` from 1.7.17 to 1.7.19
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](containerd/containerd@v1.7.17...v1.7.19)

Updates `github.com/docker/docker` from 26.1.2+incompatible to 26.1.3+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v26.1.2...v26.1.3)

Updates `github.com/google/go-containerregistry` from 0.19.1 to 0.20.0
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](google/go-containerregistry@v0.19.1...v0.20.0)

Updates `github.com/moby/buildkit` from 0.13.2 to 0.14.1
- [Release notes](https://github.com/moby/buildkit/releases)
- [Commits](moby/buildkit@v0.13.2...v0.14.1)

Updates `golang.org/x/sys` from 0.20.0 to 0.22.0
- [Commits](golang/sys@v0.20.0...v0.22.0)

---
updated-dependencies:
- dependency-name: github.com/GoogleContainerTools/kaniko
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/containerd/containerd
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/google/go-containerregistry
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/moby/buildkit
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner July 8, 2024 23:04
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 8, 2024
@dependabot dependabot bot mentioned this pull request Jul 8, 2024
Closed
@natalieparellano
Stay on the same version of buildkit as kaniko
3d94638 
Signed-off-by: Natalie Arellano <narellano@vmware.com>
@natalieparellano natalieparellano merged commit 4c40dca into main Jul 9, 2024
8 checks passed
@natalieparellano natalieparellano deleted the dependabot/go_modules/go-dependencies-a957b16f94 branch July 9, 2024 18:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jabrown85 jabrown85 jabrown85 approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jabrown85 @natalieparellano